Please register (it's free!) or login to view the remaining preview.

If you are logged in, your referral link [?] is automatically included below.

EMBED CODE (Copy and Paste)

BENEFITS OF DOCUMENT

Diagnose Cloud Security and Risk Standards projects, initiatives, organizations, businesses and processes using accepted diagnostic standards and practices.
Implement evidence-based best practice strategies aligned with overall goals.
Integrate recent advances in Cloud Security and Risk Standards and process design strategies into practice according to best practice guidelines.

DOCUMENT DESCRIPTION

This Cloud Security and Risk Standards Self Assessment helps you diagnose and address the following issues and questions:

IDS/IPS traffic pattern analysis can often detect or block attacks such as a denial-of-service attack or a network scan. However, in some cases this is legitimate traffic (such as using cloud infrastructure for load testing or security testing). Does the cloud provider have a documented exception process for allowing legitimate traffic that the IDS/IPS flags as an attack pattern?

It is clear that the CSP will face a large number of requests from its customers to prove that the CSP is secure and reliable. There a number of audit and compliance considerations for both the CSP and the customer to consider in cloud computing. First, which compliance framework should a CSP adopt to satisfy its customers and manage its own risks?

In addition to the security of your own customer data, customers should also be concerned about what data the provider collects and how the CSP protects that data. Specifically with regard to your customer data, what metadata does the provider have about your data, how is it secured, and what access do you, the customer, have to that metadata?

IDS/IPS content matching can detect or block known malware attacks, virus signatures, and spam signatures, but are also subject to false positives. If the cloud provider provides IDS/IPS services, is there a documented exception process for allowing legitimate traffic that has content similar to malware attacks or spam?

Security and authentication technologies, allied to event logging, in the cloud computing environment can help auditors as they deal with issues related to workflow were those who entered, approved, changed or otherwise touched data authorized to do so, on an individual, group or role-related basis?

As a CSP undertakes to build out or take a fresh look at its service offerings, the CSP should clearly define its business strategy and related risk management philosophy. What market segments or industries does the CSP intend to serve?

How do you know that a breach has occurred, how do you ensure that the CSP notifies you when a breach occurs, and who is responsible for managing the breach notification process (and costs associated with the process)?

An extra consideration when using cloud services concerns the handling of encryption keys - where are the keys stored and how are they made available to application code that needs to decrypt the data for processing?

Another critical success factor is that appropriate governance needs to be in place. That is, is an appropriate organizational structure in place to manage the organization facing the cloud computing solution?

The Self Assessment tool is built in MS Excel. The above preview showcases an example of a completed version. The secondary document includes a blank template, as well as a detailed 140+ page PDF guide. The guide provides a convenient way to distribute and share among the participants to prepare and discuss the Self Assessment.

Got a question about the product? Email us at [email protected] or ask the author directly by using the form to the right. If you cannot view the preview above this document description, go here to view the large preview instead.

Source: Assessment Dashboard - Cloud Security and Risk Standards Excel document

Top Flevy Author [?]

Assessment Dashboard - Cloud Security and Risk Standards

Sold by Gerard Blokdijk (this author has 193 documents)

$79.00

ALL FEES INCLUDED

Add to Cart

This business document is categorized under the function(s):

Information Technology Governance, Risk, & Compliance

It applies to All Industries

File Type: Excel (xlsx)

File Size: 473.3 KB

Related Topic(s): Cloud

Purchase includes lifetime product updates. After your purchase, you will receive an email to download this document.

This product contains a supplemental ZIP document.

Initial upload date (first version): Oct 26, 2017
Most recent version published: Oct 30, 2017

Ask the Author a Question

Must be logged in Click here to log in

CUSTOMER TESTIMONIALS

"Flevy is our 'go to' resource for management material, at an affordable cost. The Flevy library is comprehensive and the content deep, and typically provides a great foundation for us to further develop and tailor our own service offer."

– Chris McCann, Founder at Resilient.World

"FlevyPro provides business frameworks from many of the global giants in management consulting that allow you to provide best in class solutions for your clients."

– David Harris, Managing Director at Futures Strategy

"As a young consulting firm, requests for input from clients vary and it's sometimes impossible to provide expert solutions across a broad spectrum of requirements. That was before I discovered Flevy.com.

Through subscription to this invaluable site of a plethora of topics that are key and crucial to consulting, I have been able to exceed expectations and deliver quality advice and solutions to my clients. The quality and expertise of the authors are exemplary and gives me great confidence to use as part of my service offerings.

I highly recommend this company for any consultant wanting to apply international best practice standards in their service offerings. "

– Nishi Singh, Strategist and MD at NSP Consultants

"I like your product. I'm frequently designing PowerPoint presentations for my company and your product has given me so many great ideas on the use of charts, layouts, tools, and frameworks. I really think the templates are a valuable asset to the job."

– Roberto Fuentes Martinez, Manager at Technology Transformation Advisory

"As a consulting firm, we had been creating subject matter training materials for our people and found the excellent materials on Flevy, which saved us 100's of hours of re-creating what already exists on the Flevy materials we purchased."

– Michael Evans, Managing Director at Newport LLC

"As a niche strategic consulting firm, Flevy and FlevyPro frameworks and documents are an on-going reference to help us structure our findings and recommendations to our clients as well as improve their clarity, strength, and visual power. For us, it is an invaluable resource to increase our impact and value."

– David Coloma, Consulting Area Manager at Cynertia Consulting

"As a consultant requiring up to date and professional material that will be of value and use to my clients, I find Flevy a very reliable resource.

The variety and quality of material available through Flevy offers a very useful and commanding source for information. Using Flevy saves me time, enhances my expertise and ends up being a good decision."

– Dennis Gershowitz, Principal at DG Associates

"The wide selection of frameworks is very useful to me as an independent consultant. In fact, it rivals what I had at my disposal at Big 4 Consulting firms in terms of efficacy and organization."

– Julia T., Consulting Firm Owner (Former Manager at Deloitte and Capgemini)

"As a small business owner, the resource material available from FlevyPro has proven to be invaluable. The ability to search for material on demand based our project events and client requirements was great for me and proved very beneficial to my clients. Importantly, being able to easily edit and tailor the material for specific purposes helped us to make presentations, knowledge sharing, and toolkit development, which formed part of the overall program collateral. While FlevyPro contains resource material that any consultancy, project or delivery firm must have, it is an essential part of a small firm or independent consultant's toolbox."

– Michael Duff, Managing Director at Change Strategy (UK)

"One of the great discoveries that I have made for my business is the Flevy library of training materials.

As a Lean Transformation Expert, I am always making presentations to clients on a variety of topics: Training, Transformation, Total Productive Maintenance, Culture, Coaching, Tools, Leadership Behavior, etc. Flevy usually has just what I need to make my point.

It is well worth the money to purchase these presentations. Sure, I have the knowledge and information to make my point. It is another thing to create a presentation that captures what I want to say. Flevy has saved me countless hours of preparation time that is much better spent with implementation that will actually save money for my clients."

– Ed Kemmerling, Senior Lean Transformation Expert at PMG

SELECT CUSTOMERS

Since 2012, we have provided best practices to over 5,000 businesses and organizations of all sizes across the world—in over 130 countries. Below is just a very small sample of our customer base.

Did you know?

The average daily rate of a McKinsey consultant is $6,625 (not including expenses). The average price of a Flevy document is $65.

CUSTOMERS ALSO BOUGHT THESE DOCUMENTS

Get Your Cloud Strategy Right 170-page PDF document $299.00 Author: Martin Palmgren Digital Transformation Cloud	Cloud Strategy Template 42-page Word document $30.00 Author: R Bradley Consulting Cloud	Cloud Center of Excellence (CoE) - Implementation Toolkit Excel workbook and supporting ZIP $149.00 Author: Gerard Blokdijk Cloud	Assessment Dashboard - Cloud Migration Excel workbook and supporting ZIP $79.00 Author: Gerard Blokdijk Cloud
ITIL Unlocked (the missing pieces): Deliver Business Value with IT! - Get your Cloud Strategy Right! 142-page PDF document and supporting PDF $34.99 Author: Martin Palmgren Cloud	Cloud Strategy with Users Scenarios and Business Request 43-slide PowerPoint deck $100.00 Author: stjianga Cloud SaaS	How to Evaluate Cloud Migration Initiation 16-slide PowerPoint deck and supporting Word $25.00 Author: vskumar Cloud	Effects of Cloud Computing 2-page PDF document $20.00 Author: shivomagg Cloud
Cloud Computing - Risks and Opportunities 15-slide PowerPoint deck $35.00 Author: yveszieba Cloud	What Is the Need of Upgrading Cloud Skills for a PM? 14-slide PowerPoint deck $20.00 Author: vskumar Cloud	Cloud Security Strategy - Implementation Toolkit Excel workbook and supporting ZIP $249.00 Author: Gerard Blokdijk Cloud	Digital Transformation Strategy 118-slide PowerPoint deck $89.00 Author: LearnPPT Digital Transformation Customer Experience Business Transformation